A system and method for facilitating identification of an attacking computer in a network is provided. A user attempting to login to a network application may be presented with a screen prior to the login which lists preconditions of gaining access to the application. If a user concurs with the preconditions, a security module is downloaded to the user's computer and executed which gathers various configuration settings and transmits the gathered information to a predetermined destination. The security module may also attempt to place a call to a predetermined destination over a modem in the computer to cause registration of caller-ID data when answered at the predetermined destination. Once the security check is completed, login may proceed with the network application. Any data gathered by the security module may be stored for later recall and use to identify the computer in the event of an attack.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method implemented in a computer infrastructure having computer executable code tangibly embodied on a computer readable storage medium having programming instructions operable to: request, by a computer device, a login screen for an application; prompt, by the computer device, preconditions requesting permission to download and execute a security application; receive, by the computer device, approval of the preconditions; download and execute, by the computer device, the security application, the executing comprising collecting computer configuration information and determining whether a modem is configured on the computer device, and, if a modem is configured, dialing a predetermined number so that any received caller-ID information associated with a telephone line used by the modem can be determined by an application server for the application; transfer, by the computer device, the collected computer configuration information to the application server for the application; and provide, by the computer device, the login screen for the application.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information (e.g., OS version, installed software) and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
2. The method of claim 1 , wherein the preconditions stipulate particular configurations and attributes of the computer device to be downloaded and sent to the application server.
The process of pre-login security check asks for approval to download and execute a security application; where the request specifies the configuration settings and attributes of the computer that will be collected and sent to the application server.
3. The method of claim 1 , wherein the login screen for the application is provided after the collecting the computer configuration information.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information (e.g., OS version, installed software) and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. After collecting computer configuration information, the user is presented with the login screen.
4. The method of claim 1 , wherein the computer configuration information includes at least any one of a host name and a primary directory name service (DNS) suffix.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including the computer's hostname or primary DNS suffix, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
5. The method of claim 1 , wherein the collecting the computer configuration information includes an acquiring registry information step comprising acquiring configurations from hardware, software and system subtrees.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including registry information from hardware, software, and system subtrees, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
6. The method of claim 1 , wherein the collecting the computer configuration information includes acquiring a hardware configuration comprising hardware information for at least any one of a central processing unit (CPU), memory, a compact disk, a DVD, a modem, hardware element version, and an I/O port.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including hardware details such as CPU, memory, CD/DVD drive, modem, hardware version, and I/O port information, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
7. The method of claim 1 , wherein the collecting the computer configuration information includes acquiring a software configuration comprising at least any one of a software component identification, a browser configuration, a software component version, a driver version, an application identification and directory structure.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including software details like component IDs, browser configuration, software and driver versions, application identification, and directory structure, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
8. The method of claim 1 , wherein a service provider at least one of creates, maintains, deploys and supports the computer infrastructure.
The process of pre-login security check, including requesting approval to download/execute a security application, collecting system information, and optionally dialing a phone number via modem; is created, maintained, deployed, or supported by a service provider.
9. The method of claim 1 , wherein steps of claim 1 are provided by a service provider on a subscription, advertising, and/or fee basis.
The process of pre-login security check, including requesting approval to download/execute a security application, collecting system information, and optionally dialing a phone number via modem; is provided by a service provider on a subscription, advertising, or fee basis.
10. The method of claim 1 , wherein the received caller-ID information is time stamped.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The received caller-ID information is time stamped. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
11. The method of claim 1 , wherein the received caller-ID information is stored for later retrieval.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The received caller-ID information is stored for later retrieval. The collected configuration data is then sent to the application server. Finally, the user is presented with the login screen.
12. A method implemented in a computer infrastructure having computer executable code tangibly embodied on a computer readable storage medium having programming instructions operable to: request, by a computer device, a login screen for an application; prompt, by the computer device, preconditions requesting permission to download and execute a security application; receive, by the computer device, approval of the preconditions; download and execute, by the computer device, the security application, the executing comprising collecting computer configuration information; transfer, by the computer device, the collected computer configuration information to an application server for the application; and provide, by the computer device, the login screen for the application, wherein the collected computer configuration information comprises at least: (i) Ethernet information associated with one or more Ethernet adapters; (ii) registry information; (iii) hardware configuration information; (iv) software configuration information comprising a software component identification, a browser configuration, a software component version, a driver version, an application identification and directory structure; and (v) operating system product information and associated libraries.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including Ethernet adapter details, registry information, hardware and software configurations (software component IDs, browser configuration, software/driver versions, application identification, directory structure), operating system and library information. The collected configuration data is then sent to the application server, and the user is presented with the login screen.
13. The method of claim 12 , further comprising collecting computer configuration information and determining whether a modem is configured on the computer device, and, if a modem is configured, dialing a predetermined number so that any received caller-ID information associated with a telephone line used by the modem can be determined by an application server for the application.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including Ethernet adapter details, registry information, hardware and software configurations (software component IDs, browser configuration, software/driver versions, application identification, directory structure), operating system and library information, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The collected configuration data is then sent to the application server, and the user is presented with the login screen.
14. The method of claim 13 , wherein the received caller-ID information is time stamped.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including Ethernet adapter details, registry information, hardware and software configurations (software component IDs, browser configuration, software/driver versions, application identification, directory structure), operating system and library information, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The received caller-ID information is time stamped. The collected configuration data is then sent to the application server, and the user is presented with the login screen.
15. The method of claim 14 , wherein the received caller-ID information is stored for later retrieval.
Before a user logs into a network application, the computer displays a screen asking permission to download and run a security application. If the user approves, the security application is downloaded and executed. This application collects the computer's configuration information, including Ethernet adapter details, registry information, hardware and software configurations (software component IDs, browser configuration, software/driver versions, application identification, directory structure), operating system and library information, and checks for a configured modem. If a modem is present, the application dials a specific phone number to register caller ID information at a server. The received caller-ID information is time stamped and stored for later retrieval. The collected configuration data is then sent to the application server, and the user is presented with the login screen.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
October 22, 2014
March 21, 2017
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.